McGraw Hill has been listed on the ShinyHunters ransomware crew's dark web leak site after a Salesforce misconfiguration exposed 13.5 million records, including names, phone numbers, email addresses, and some physical addresses. The leaked data exceeds 100 GB. McGraw Hill claims the breach stemmed from a misconfigured Salesforce-hosted webpage and insists it did not involve unauthorized access to its core systems or customer databases. ShinyHunters claims to hold over 40 million Salesforce records and accused McGraw Hill of failing to pay a ransom before an April 14 deadline. Salesforce misconfigurations typically arise from stolen credentials, abused OAuth apps, or over-permissioned integrations rather than flaws in Salesforce itself.
Sort: